HQ/EMEAFind out how we can help your business
The NCR Corporation is a North American software, consulting, and technology entity that provides professional services and electronic products. The corporation was previously known as the National Cash Register.
In a recent incident, NCR suffered an outage on its Aloha point of sale platform after it experienced a ransomware attack from the BlackCat gang. The Aloha POS of the affected entity is a comprehensive restaurant point-of-sale and management software.
Based on reports, this company provides its service to most of the cashiers and servers in North America compared to its counterparts.
NCR software firm confirmed the ransomware attack on its systems through a series of notification letters for its customers.
According to the NCR notification letters, their systems experienced a cybersecurity incident that affected a single data centre and compromised a limited number of ancillary Aloha apps. A subset of their hospitality customers suffered disruptions from the attack. Earlier this week, the company confirmed that the interruption resulted from a ransomware incident.
The affected entity immediately notified the relevant law enforcement agencies to address the issue. Furthermore, they have employed the services of a third-party security provider to assess the situation and determine the primary objective of the attack.
Fortunately, the company claimed that their customers have still served their customers without hiccups. The latest investigations revealed that the attack impacted a particular functionality.
The company added that the attack did not affect any payment applications or systems within the premises since only a specific functionality experienced the disruption.
The BlackCat ransomware group added NCR software firm to its latest victims on its Tor data leak website. Cybersecurity experts also believe that a chat message concerning the negotiation between NCR and the ransomware attacks has commenced.
The bad news is that the ransomware operators claimed they had stolen troves of data, including the stolen credentials owned by NCR’s customers. They are now threatening the company that they will leak the stolen data if they do not receive a ransom payment.
The latest development of this incident is that the ransomware group has removed NCR from its data leak website. This detail indicates that BlackCat and NCR are having an ongoing negotiation.
